Gitiles
Code Review Sign In
review.blissroms.org / platform_device_qcom_sepolicy-legacy / refs/heads/t / . / common / netd.te
blob: f1df8f3bdf71b37811bd677bf898be2923210c64 [file] [log] [blame]
Subash Abhinov Kasiviswanathan2c3fed32014-03-12 17:13:13 -0600[diff] [blame]1#Policies for IPv6 tethering
2allow netd netd:capability { setgid setuid };
Biswajit Paul64f83f62014-10-13 14:36:16 -0700[diff] [blame]3dontaudit netd self:capability sys_module;
Bryse Flowers31f25fc2016-05-21 19:00:49 -0700[diff] [blame]4binder_use(netd);
5allow netd qtitetherservice_service:service_manager find;
Ravi Kumar Siddojigari91ffd842014-10-15 17:38:15 +0530[diff] [blame]6
Biswajit Paul2d35d982017-02-01 17:40:10 -0800[diff] [blame]7allow netd netd:packet_socket create_socket_perms_no_ioctl;
Avijit Kanti Das441bad42015-05-12 14:07:41 -0700[diff] [blame]8
Ravi Kumar Siddojigaric7def122017-06-13 00:49:19 +0530[diff] [blame]9#unix_socket_connect(netd, cnd, cnd)
Manu Prasad6b869a82014-12-05 18:53:01 +0530[diff] [blame]10
11allow netd wfdservice:fd use;
Ravi Kumar Siddojigaric7def122017-06-13 00:49:19 +0530[diff] [blame]12#allow netd wfdservice:tcp_socket rw_socket_perms;
Deepak Kushwahf9d0b752017-07-26 15:14:12 +0530[diff] [blame]13hal_client_domain(netd, wifidisplayhalservice);
Ravinder Konkabbe60732015-05-27 17:18:26 +0530[diff] [blame]14
Ashwanth Goliad2c7ef2016-06-03 12:55:06 +0530[diff] [blame]15#allow netd to use privileged sock ioctls
16allowxperm netd self: { unix_stream_socket } ioctl priv_sock_ioctls;
17
Hamad Kadmany567ffc72015-08-27 15:36:39 +0300[diff] [blame]18# needed for netd to start FST Manager via system property
Michael Bestasfc211fc2017-08-08 21:18:48 +0300[diff] [blame]19set_prop(netd, netd_prop)
Sravanthi Palakonda7e92d042015-11-06 16:56:06 +0530[diff] [blame]20
21allow netd self:capability fsetid;
Michael Bestas0feb07d2018-10-05 00:37:23 +0300[diff] [blame]22#allow netd hostapd:unix_dgram_socket sendto;
Sravanthi Palakonda7e92d042015-11-06 16:56:06 +0530[diff] [blame]23
24# Allow netd to chmod dir /data/misc/dhcp
25allow netd dhcp_data_file:dir create_dir_perms;
26
27type_transition netd wifi_data_file:dir wpa_socket "sockets";
28allow netd wpa_socket:dir create_dir_perms;
Ravi Kumar Siddojigaric7def122017-06-13 00:49:19 +0530[diff] [blame]29#allow netd wpa_socket:sock_file create_file_perms;